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- The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )[3 Responsive to communication(s) filed on 1 1 January 2007 . 
2a)[EI This action is FINAL. 2b)D This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) [3 Claim(s) 1-24 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) IEI Claim(s) 1-24 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10)D The drawing(s) filed on __ is/are: a)Q accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 

Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
1 !)□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12)Q Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)Q Some * c)D None of: 

1. D Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 



3.Q Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

1. This action is responsive to communications: application, filed 10/23/200; 
amendment filed 11//2007. 

2. Claims 1-24 are pending in the case. 

Response to Arguments 

3. Applicant's argument relative to rejection under section 101 is found persuasive, 
as the cited portions does show a discovery gate message that includes as public key. 
Accordingly, the rejection under section 101 is withdrawn. 

4. With regards to rejection under section 102 of claim 1 , applicant argues not Roh 
sends, presumably, unencrypted registration messages and: "This conclusion is supported 
by Roh because all messages exchanged between the OLT and the ONU are encrypted only after 
the OLT installs the session key sent from the ONU. See Roh, page 102, 1st paragraph." 
However, establishing a key is a requirement of sending encrypted registration 
messages, otherwise, the encrypted message cannot be decrypted. Therefore, the fact 
that the messages are encrypted after a key is established, is not an indication that the 
registration messages are not encrypted. Based on Roh section 4.1, after the session 
key is exchanged between OLT and ONU, all communications are encrypted for 
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security using the session key. Roh, as indicated in Fig. 3, does send encrypted 
registration messages, using the key established at some point, and therefore meet the 
requirements of the claim (see also the 101 rejection). 

Applicant further states: "In addition, Roh fails to teach the elements of "an encrypted 
registration message including a permanent medium access control (MAC) address... and an 
encrypted general gate message including said permanent MAC address, " as recited in the 
claim." However, as indicated in the rejections, Roh's system is based on the Ethernet 
protocol, and therefore each message exchanged between communicating entities 
contains the MAC address. Note that applicant merely states that the limitations are not 
taught, and does not discuss the associated rejection, or any reason in support of 
traversing the rejection. 

With regards to rejection under section 103, applicant first argues that the dependent 
claims should be allowed because of their dependency to claim 1 . However, as 
discussed above, claim 1 is not allowable. 

Applicant further argue: "Further, the Applicants are unable to discern and the Examiner 
has not cited the portion of Stallings that teaches or suggests the missing elements of 
claim 1 ." However, as indicated in rejection of claim 3, Stallings is relied on to show the 
principal of public key cryptograph, which was broadly used and notoriously popular at 
the time of invention. Stallings, which as indicated in the rejection, is reference by Roh, 



Application/Control Number: Page 4 

10/693,131 

Art Unit: 2132 

teaches the principals of cryptography, and includes a full chapter on principals of public 
key cryptography. Namely, chapter 9, starting at page 209 teaches the use of public and 
private keys in encryption and securing data communications. Applicant further merely 
states that the basic requirements of an articulated rationale under MPEP § 2142 
cannot be found. However, all elements of a prima facie case of obviousness as 
required by MPEP, including showing of all elements of the claimed invention by the 
combination, and the motivation of combination are included in the rejection. 

Based on the discussion above, applicant's argument regarding allowability of the 
pending claims is found non persuasive. 

Claim Rejections - 35 USC § 102 

5. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 

form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a printed 
publication in this or a foreign country, before the invention thereof by the applicant for a patent. 

(a) the invention was known or used by others in this country, or patented or described in a printed 
publication in this or a foreign country, before the invention thereof by the applicant for a patent. 

6. Claim 1 rejected under 35 U.S.C. 102(a) as being anticipated by Security Model 
and Authentication Protocol in EPON-based Optical Access Network, (hereinafter called 
Roh) by Roh and Kim, published as part of Transport Optical Networks, 2003, 
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Proceedings of the 2003 5 th International Conference on 29 June-3 July 2003 (volume 
1) 



6.1. As per claim 1, Roh is directed to a key management device for provision of a 
security service in an Ethernet-based passive optical network (abstract), comprising: an 
optical line terminal for sending a discovery gate message to discover an optical 
network unit for data transmission (Fig. 3 and associated text, where GATE(Discover 
Gate) is sent from the OLT to ONU), and, if said optical network unit receives said 
discovery gate message and then requests data communication (Fig. 3, the REGISTER 
REQUEST message), sending an encrypted registration message including a 
permanent medium access control (MAC) address of said optical network unit to said 
optical network unit to notify said optical network unit that it has been registered and an 
encrypted general gate message including said permanent MAC address of said optical 
network unit to said optical network unit to allocate a time slot to said optical network 
unit (Fig. 3, the REGISTER message, along with the GATE(GRANT), and the key 
certification. Note that the system is based on the Ethernet protocol, and therefore each 
message exchanged between communicating entities contains the MAC address); 
and said optical network unit for receiving said discovery gate message and 
then sending an encrypted registration request message to said optical line 
terminal to request the data communication therewith and an encrypted 
registration acknowledgement message to said optical line terminal to respond 
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to said registration message (Fig. 3, the responses from the ONU to OLT corresponding 
to messages sent from OLT to ONU). 

Claim Rejections - 35 (JSC § 103 

7. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been. obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

8. Claims 2-24 rejected under 35 U.S.C. 103(a) as being unpatentable over Roh as 
applied to claiml above, and further in view of Cryptography and Network Security, by 
W. Stallings, 2 nd Edition, 1999. 

8.1 . As per claim 3, Roh is directed to the key management device as set forth in 
claim 1, wherein said discovery gate message includes a time slot field allocated to said 
optical network unit for registration thereof, a capability of said optical line terminal, a 
public key of said optical line terminal, and a nonce encrypted by a private key of said 
optical line terminal for signature (Based on Roh section 4.1 , after the session key is 
exchanged between OLT and ONU, all communications are encrypted for security using 
the session key. However, Row does not specifically describe use of a private key 
system and a signature to enhance the security of communication. 
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Stallings teaches use of private key systems and signature to protect data 
communication. Stallings also teaches details of key exchange protocols to exchange 
the private/public keys and signature keys, when a session key is established between 
parties. 

At the time of invention, it would have been obvious to the one skilled in art, to enhance 
the security of the system taught by Roh, by using private key protocols and digital 
signatures as taught by Stallings. 

The motivation to do so would have been to improve the system security. Note that 
Stallings is a referenced by Roh (see section 4.2.) for teaching encryption protocols to 
enhance security. 

All the fields, such as the time slot field, are part of EPON protocol). 

8.2. As per claim 2, Roh is directed to the key management device as set forth in 
claim 1, wherein said discovery gate message is periodically sent (per Ethernet 
protocol, discovery messages are periodically sent from OLT to discover new elements 
seeking to connect). 
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8.3. As per claim 4, Roh is directed to the key management device as set forth in 
claim 1, wherein said registration request message includes a physical ID capability, a 
capability of said optical network unit, an echo of a capability of said optical line 
terminal, a session key, a nonce decrypted by a public key of said optical line terminal, 
and a nonce created for signature of said optical network unit (Examiner take the official 
notice that all the exchanged fields are well known as part of EPON protocol, and 
therefore, would have been obvious to include in the security protocol taught by Roh). 

8.4. As per claim 5, Roh is directed to the key management device as set forth in 
claim 4, wherein said physical ID capability, said capability of said optical network unit, 
said echo of said capability of said optical line terminal, said nonce decrypted by said 
public key of said optical line terminal and said nonce created for the signature of said 
optical network unit are encrypted using said session key (see response to claim 4). 

8.5. As per claim 6, Roh is directed to the key management device as set forth in 
claim 4, wherein said session key is encrypted using said public key of said optical line 
terminal (see response to claim 4 and 1). 

8.6. As per claim 7, Roh is directed to the key management device as set forth in 
claim 1, wherein said registration message further includes a physical ID list, an echo of 
a capability of said optical network unit, and a signature of said optical network unit (see 
response to claim 4). 
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8.7. As per claim 8, Roh is directed to the key management device as set forth in 
claim 1 , wherein said general gate message further includes a time slot field for 
upstream transmission of said optical network unit (see response to claim 4). 

8.8. As per claim 2, Roh is directed to the key management device as set forth in 
claim 8, wherein said general gate message is encrypted using a session key (see 
response to claims 1 and 4). 

8.9. As per claim 10, Roh is directed to the key management device as set forth in 
claim 1, wherein said registration acknowledgement message includes a session key 
encrypted by a public key of said optical line terminal, and an echo of a registered 

physical ID (see response to claims 1 and 4). 

■» 

8.10. As per claim 1 1 , Roh is directed to the key management device as set forth in 
claim 10, wherein said registration acknowledgement message is encrypted using said 
session key (see response to claims 1 and 4). 

8.1 1 . As per claim 12, Roh is directed to the key management device as set forth in 
claim 1 , wherein said optical line terminal includes: a public key processor for creating a 
public key to be included in said discovery gate message, and encrypting and 
decrypting said public key; a session key processor for decrypting said registration 
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request message and registration acknowledgement message from said optical network 
unit using a session key, and encrypting said general gate message and registration 
message using said session key; a private key processor for creating a private key 
using said public key for encryption of messages to be transmitted to said optical 
network unit and decryption of messages received from said optical network unit, and 
encrypting and decrypting said private key; and storage means for storing and 
managing said public key, session key and private key (All the processes in the claim 
are addressed in claims 1-1 1 above. Once the processes are taught, the hardware 
(processor) to perform said processes in the OLU and ONT is also taught, as it is a 
trivial requirement to develop the system). 

8.12. As per claim 13, Roh is directed to the key management device as set forth in 
claim 1, wherein said optical network unit includes: a session key processor for creating 
a session key for encrypted communication with said optical line terminal, encrypting a 
part of said registration request message using said session key, decrypting said 
registration message and general gate message from said optical line terminal using 
said session key and encrypting said registration acknowledgement message using said 
session key; a public key processor for encrypting said session key using a public key 
from said optical line terminal; and storage means for storing said session key and 
public key (see response to claim 12. Note that performing decryption to access 
encrypted data is an integral part of encryption systems taught by Stallings). 
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8.13. Limitations of claims 14-24 are substantially the same as claims 1-13 above. 

8.14. Claims 29-35 are withdrawn from consideration by the applicant's election in 
response to restriction requirement. Claims 25-28 are cancelled. 

Conclusion 

9. THIS ACTION IS MADE FINAL, as no new ground of rejection is included. See 
MPEP § 7.39. Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

1 0. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Farid Homayounmehr whose telephone number is (571) 
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272-3739. The examiner can be normally reached on 9 hrs Mon-Fri, off Monday 



If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on (571) 272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 

Farid Homayounmehr A , <-) ^ 



biweekly. 



1/18/2008 



GILBERTO BARRON 
SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CENTER 2100 




